Bluez

Bluez

37 vulnerabilities found.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
3.3

CVE-2021-3588

Exploit
  • EPSS 0.12%
  • Published 10.06.2021 03:15:07
  • Last modified 21.11.2024 06:21:54

The cli_feat_read_cb() function in src/gatt-database.c does not perform bounds checks on the 'offset' variable before using it as an index into an array for reading.

5.7

CVE-2021-0129

  • EPSS 0.13%
  • Published 09.06.2021 20:15:08
  • Last modified 21.11.2024 05:42:01

Improper access control in BlueZ may allow an authenticated user to potentially enable information disclosure via adjacent access.

6.5

CVE-2020-24490

  • EPSS 5.6%
  • Published 02.02.2021 22:15:12
  • Last modified 21.11.2024 05:14:54

Improper buffer restrictions in BlueZ may allow an unauthenticated user to potentially enable denial of service via adjacent access. This affects all Linux kernel versions that support BlueZ.

8.6

CVE-2020-27153

  • EPSS 1.9%
  • Published 15.10.2020 03:15:12
  • Last modified 21.11.2024 05:20:47

In BlueZ before 5.55, a double free was found in the gatttool disconnect_cb() routine from shared/att.c. A remote attacker could potentially cause a denial of service or code execution, during service discovery, due to a redundant disconnect MGMT eve...

7.1

CVE-2020-0556

  • EPSS 0.16%
  • Published 12.03.2020 21:15:14
  • Last modified 21.11.2024 04:53:45

Improper access control in subsystem for BlueZ before version 5.54 may allow an unauthenticated user to potentially enable escalation of privilege and denial of service via adjacent access

3.3

CVE-2018-10910

Exploit
  • EPSS 0.06%
  • Published 28.01.2019 15:29:00
  • Last modified 21.11.2024 03:42:16

A bug in Bluez may allow for the Bluetooth Discoverable state being set to on when no Bluetooth agent is registered with the system. This situation could lead to the unauthorized pairing of certain Bluetooth devices without any form of authentication...

6.5

CVE-2017-1000250

Exploit
  • EPSS 39.93%
  • Published 12.09.2017 17:29:00
  • Last modified 20.04.2025 01:37:25

All versions of the SDP server in BlueZ 5.46 and earlier are vulnerable to an information disclosure vulnerability which allows remote attackers to obtain sensitive information from the bluetoothd process memory. This vulnerability lies in the proces...

7.8

CVE-2016-7837

  • EPSS 0.38%
  • Published 09.06.2017 16:29:01
  • Last modified 20.04.2025 01:37:25

Buffer overflow in BlueZ 5.41 and earlier allows an attacker to execute arbitrary code via the parse_line function used in some userland utilities.

7.5

CVE-2016-9917

Exploit
  • EPSS 0.45%
  • Published 08.12.2016 08:59:03
  • Last modified 12.04.2025 10:46:40

In BlueZ 5.42, a buffer overflow was observed in "read_n" function in "tools/hcidump.c" source file. This issue can be triggered by processing a corrupted dump file and will result in hcidump crash.

5.3

CVE-2016-9804

Exploit
  • EPSS 0.36%
  • Published 03.12.2016 06:59:09
  • Last modified 12.04.2025 10:46:40

In BlueZ 5.42, a buffer overflow was observed in "commands_dump" function in "tools/parser/csr.c" source file. The issue exists because "commands" array is overflowed by supplied parameter due to lack of boundary checks on size of the buffer from fra...